- Hands-On Bug Hunting for Penetration Testers
- Joseph Marshall
- 87字
- 2021-07-16 17:53:11
Building a Process
If we think about how to build processes the Unix way, with small scripts responsible for single concerns, chained together into more complex workflows (all built on the common foundation of plain text) it makes sense to boil down our automated reconnaissance tools into the smallest reusable parts.
One part is that wrapper script we just wrote, scanjs.sh. This script scans the client-side code of a website (currently from a repo) and compiles a report in json, which it both saves and displays.
推薦閱讀
- 工業(yè)互聯(lián)網(wǎng)安全防護(hù)與展望
- 網(wǎng)絡(luò)安全意識(shí)導(dǎo)論
- 云原生安全技術(shù)實(shí)踐指南
- 軟件安全保障體系架構(gòu)
- 信息安全導(dǎo)論(第2版)
- Bug Bounty Hunting Essentials
- Cybersecurity Threats,Malware Trends,and Strategies
- 網(wǎng)絡(luò)空間安全:拒絕服務(wù)攻擊檢測(cè)與防御
- 數(shù)字政府網(wǎng)絡(luò)安全合規(guī)性建設(shè)指南:密碼應(yīng)用與數(shù)據(jù)安全
- Web安全攻防從入門到精通
- 信息組織
- Metasploit 5.0 for Beginners
- CCNA Security 210-260 Certification Guide
- 大數(shù)據(jù)時(shí)代的云安全
- 商用密碼應(yīng)用與安全性評(píng)估